An add-on for antivirus software that can scan across a computer network and trap malicious activity missed by the system firewall is being developed by an international team. Details are reported in the International Journal of Electronic Security and Digital Forensics. The research raises the issue that the developers of both operating systems and antivirus software must work more closely together to reduce the burden of malware on computer systems the world over.
The battle between malware authors and security researchers has changed dramatically in the last few years. The purpose behind malware was often for the sake of a prank, to expose vulnerabilities or for the sake of spite. Today, malware is more about stealing sensitive data and exploiting information for fraud, identity theft and other criminal intent. In addition, much malware is aimed at breaking systems through denial-of-service (DoS) attacks in the name of espionage, whether industrial or political or for “hacktivism”, whereby activists prevent legitimate users from accessing a site they see as the enemy to their cause.
Computer security systems that attempt to thwart the spread of malicious software, malware, often fall down at one of two points of failure. The first being the failure of the network to spot malicious data packets entering the system. The second is that once the network is breached, the antivirus software, which is the last line of network defense fails to identify the software intruder as malicious. Now, researchers in Jordan and the USA have devised an antivirus add-on that allows the AV software to scan the network data as well as applications and so trap malicious activity that the firewall and other defenses that work at the network have missed.
The system devised by computer scientists Mohammed Al-Saleh of Jordan University of Science and Technology in Irbid and Bilal Shebaro of St. Edward’s University, Austin, Texas, side-steps the problem of additional computing overheads placed on a network attempting to detect the spread of malware that may well be encrypted and avoids the issue of antivirus software becoming out-of-date the instant new malware is written and uploaded and the inevitable vulnerability that occurs during the AV scanning process.
Read more: Low-cost malware detection
The Latest on: Malware detection
via Google News
The Latest on: Malware detection
- Could Rogue AI Services Become the New Tool for Harvesting Data and Distributing Malware?on July 27, 2019 at 4:27 pm
This means organizations no longer have to solely rely on vendor integrity to prevent malware infections, as they’ll have their own detection or isolation methods in their frameworks. This guardrail ... […]
- Norascan is an anti-malware scanner for Windows PCon July 26, 2019 at 6:03 am
there are chances that some malware or a new variant of spyware may sneak through and harm your important files and folders. Hence, as an additional precautionary measure, you can use Norascan to scan ... […]
- WatchGuard’s ThreatSync detects and remediates zero day threats and evasive malwareon July 25, 2019 at 8:43 pm
“These new ThreatSync capabilities arm MSPs with the tools they need to provide malware detection and response (MDR) services by detecting breaches in minutes and automatically mitigating advanced ... […]
- Mobile malware attacks are booming in 2019: These are the most common threatson July 25, 2019 at 6:00 am
For example, the Anubis banking trojan will only begin operating after motion sensors detect that the device has been moved -- a strategy to avoid it being detected and analysed in sandbox ... […]
- Watch out for a big increase in malware that steals your passwordson July 24, 2019 at 5:16 pm
For example, malware can now steal two-factor authentication data from apps that generate one-time access codes. So always remain vigilant and stay up to date on the latest cyberthreats. 7 steps to ... […]
- Palo Alto Networks Receives FedRAMP Authorization for Cloud-Based WildFire Malware Prevention Serviceon July 24, 2019 at 1:13 pm
WildFire is the first and only cloud-based malware prevention service authorized ... WildFire helps federal agencies automatically detect and stop unknown attacks and improve operational ... […]
- WatchGuard Speeds Zero Day Malware Breach Detection from Months to Minuteson July 24, 2019 at 2:07 am
“As cyber criminals increasingly leverage advanced, targeted attacks with evasive characteristics designed to circumvent basic anti-malware protections, midmarket organisations without adequate ... […]
- Vicious malware threatens to turn search engine into crypto-mining zombie botneton July 23, 2019 at 7:59 am
Ominously, Trend Micro researchers warned that any malware that evades detection and features multi-stage execution is a “red flag.” “That the cybercriminals (or threat actors) behind this ... […]
- Warning As Iranian State Hackers Target LinkedIn Users With Dangerous New Malwareon July 22, 2019 at 3:05 am
In exposing this campaign, FireEye identified new malware variants that target infected systems ... "Threat actors are often reshaping their TTP [Tactics, Techniques and Procedures] to evade detection ... […]
- Researchers bypass Cylance’s AI-based AV solution by masking malware with video game codeon July 21, 2019 at 10:47 am
While this technique was specifically meant to work on Cylance, the researchers warn that malicious actors could similarly analyze other AI-based malware detection solutions for weaknesses or biases ... […]
via Bing News